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Case Study: 1 
Consolidated Messenger 
Scenario: 
You are an enterprise desktop support technician for Consolidated Messenger. 
Network Configuration 
The company has three offices named Officel, Office2, and Office3. The offices connect to 
each other over the Internet by using VPN connections. Each office has an 802.11g wireless 
access point. All wireless access points are configured to use Radius01 for authentication. 
Active Directory Configuration 
The network contains one Active Directory domain named consolidatedmessenger.com. The 
relevant organizational unit structure is shown in the following diagram. 
a) UserAccounts 
3) Finance 
3) Sales 
3| Marketing 
3) CorpComputers 
3) Desktops 
3) Laptop 
3) Servers 


The relevant Group Policy objects (GPOs) in the domain are configured as shown in the 
following table. 


Group Policy name Linked to OU 
Desktops Desktops 


Laptops 


ServerComputers Servers 


AllComputers CorpComputers 


AllUsers UserAccounts 


Applications 
The relevant applications on the network are shown in the following table. 


\Application name Description 
A financial analysis 


FinanceApp1 Windows Application application that is used by 


the finance users. 


A new ERP application that 


ERPApp1 Windows Application 


is deployed in a pilot project. 


Server Configuration 
The relevant servers are configured as shown in the following table. 
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Server 
Server role(s) Office 
name 
DCO1 Domain controller, DNS Office 
DC02 Domain controller, DNS 
File01 File server, DHCP 


Radius01 Network Policy Server (NPS) 


DC03 Domain controller, DNS, DHCP 
DC04 Domain controller, DONS, DHCP 


Client Configuration 

Each office has 500 desktop computers that run Windows 7 Enterprise. There are 250 mobile 
users that travel regularly between all three offices. The mobile users have laptop computers 
that run Windows 7 Enterprise. To prevent the spread of malware, the company restricts the 
use of USB devices and only allows the use of approved USB storage devices. 

Printers 

The marketing group has several printers that are shared on File01. A shared printer name 
Printer! is a high-performance, black-and-white printer. A shared printer named Printer2 is a 
high-definition, photo-quality, color printer. Printer2 should only be used to print marketing 
brochures. 


Question: 1 


The chief financial officer (CFO) releases new guidelines that specify that only users from finance are 
allowed to run FinanceApp1. Users in the Marketing OU report that they can run FinanceApp1. You 
need to ensure that only users in the Finance OU can run FinanceApp1. What should you do? 


A. In the AllComputers GPO, create a new AppLocker executable rule. 

B. In the Desktops GPO and the Laptops GPO, create a new Windows Installer rule. 

C. In the AllComputers GPO, create a software restriction policy and define a new hash rule. 

D. In the Desktops GPO and the Laptops GPO, create a software restriction policy and define a new 
path rule. 


Answer: A 


Explanation: 

Chapter 10 p 467- 468 

Understanding the difference between SRP and AppLocker 

You might want to deploy application control policies onto Windows operating systems earlier than 
Windows. Server2008R2 or Windows7. You can use AppLocker policies only on the supported 
editions of Windows. Server2008R2 and Windows7, but you can use SRP on supported editions of 
Windows beginning with Windows Server2003 and WindowsXP. 
http://technet.microsoft.com/en-us/library/ee460955(WS.10).aspx 
http://technet.microsoft.com/en-us/library/dd548340(WS.10).aspx 
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Question: 2 


Users in the ERPApp1 pilot project report intermittent application issues. You need to consolidate all 
application events for the users in a central location. What should you do? 


A. Configure event subscriptions. 

B. Configure the Advanced Audit Policy Configuration settings. 
C. Create a custom view in Event Viewer. 

D. Create a user-defined Data Collector Set. 


Answer: A 


Explanation: 

Chapter 8 Lesson 1 p 302 - 305 

A. Configure event subscriptions. 

Event Viewer enables you to view events on a single remote computer. However, troubleshooting an 
issue might require you to examine a set of events stored in multiple logs on multiple computers. 
Windows 7 includes the ability to collect copies of events from multiple remote computers and store 
them locally. To specify which events to collect, you create an event subscription. Among other 
details, the subscription specifies exactly which events will be collected and in which log they will be 
stored locally. Once a subscription is active and events are being collected, you can view and 
manipulate these forwarded events as you would any other locally stored events. 

B. Configure the Advanced Audit Policy Configuration settings. 
http://technet.microsoft.com/en-us/library/dd408940(WS.10).aspx 

C. Create a custom view in Event Viewer. 

You can create a filter that includes events from multiple event logs that satisfy specified criteria. You 
can then name and save that filter as a custom view. To apply the filter associated with a saved 
custom view, you navigate to the custom view in the console tree and click its name. 

D. Create a user-defined Data Collector Set. 

You can create a custom Data Collector Set containing performance counters and configure alert 
activities based on the performance counters exceeding or dropping below limits you define. 

After creating the Data Collector Set, you must configure the actions the system will take when the 
alert criteria are met. 

Membership in the local Performance Log Users or Administrators group, or equivalent, is the 
minimum required to complete these procedures. 
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New Shared Printer Properties | xf 


General | Common | 


Update ~ 


I: Delete all shared printer connections 

Shared printer - ; 
| C 

I Set this printer as the default printer... 

F ody talora printer isnot present 


http://www.youtube.com/watch ?v=4xxKPgT5irU 
http://www.youtube.com/watch ?v=fKelHBve57k 


Question: 3 


The help desk reports that users in the Marketing OU print draft documents, e-mails, and other 
miscellaneous documents on Printer2. You need to recommend a solution so that marketing users 
print documents to Printer1 by default. What should you do? 


A. Enable printer pooling. 

B. Configure Group Policy Preferences. 

C. Modify the priorities of the shared printers. 

D. Modify the permissions of the shared printers. 


Answer: B 


Explanation: 

http://technet.microsoft.com/en-us/library/cc732092.aspx 

Action: This type of preference item provides a choice of four actions: Create, Replace, Update, and 
Delete. The behavior of the preference item varies with the action selected and whether the printer 
connection already exists. 
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Set this printer as the default printer - Select this check box to make the shared printer connection 
the default Windows printer for the current user. 

Only if a local printer is not present - Select this check box to bypass changing the default printer if 
there is a local printer configured on the computer. This setting is unavailable until you select the Set 
this printer as the default printer check box. 

Note: A local printer is any printer that is not connected to a shared network printer. This includes 
physical printers connected to parallel, serial, and USB ports, TCP/IP printers, and virtual printers 
installed through software. 

To create a new Shared Printer preference item 

Open the Group Policy Management Console. Right-click the Group Policy object (GPO) that should 
contain the new preference item, and then click Edit. 

In the console tree under User Configuration, expand the Preferences folder, and then expand the 
Control 

Panel Settings folder. 

Right-click the Printers node, point to New, and select Shared Printer. 

In the New Shared Printer Properties dialog box, select an Action for Group Policy to perform. 

Enter shared printer settings for Group Policy to configure or remove. 

Click the Common tab, configure any options, and then type your comments in the Description box. 
Click OK. The new preference item appears in the details pane. 


Question: 4 


The Office1 network link is brought offline for emergency maintenance. Users in Office2 and Office3 
report that they cannot connect to the wireless network. You need to recommend changes to ensure 
that users in all offices can connect to the wireless network if a WAN link fails. What should you 
recommend? 


A. that redundant DHCP scopes be created 

B. that additional RADIUS servers be deployed 

C. that universal group caching be implemented 
D. that additional default gateways be configured 


Answer: B 


Question: 5 


The company purchases 500 USB flash drives from a new hardware vendor and distributes them to 
the users. The help desk reports that the users are unable to access the new USB flash drives. You 
need to ensure that users can save data on the USB flash drives. What should you do? 


A. Instruct the help desk to modify the BitLocker settings. 

B. Instruct the help desk to modify the Windows Defender settings. 

C. Request that an administrator modify the driver signing policy. 

D. Request that an administrator modify the device installation restriction policy. 


Answer: D 
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Explanation: 
Open Group Policy Management and edit the applicable GPO in your Active Directory. 


Disable autorun: 
Computer Configuration \ Administrative Templates \ Windows Components \ AutoPlay Policies 


Turn off Autoplay: Enabled 


BH Group Policy | Seting (Eghan 


Ble aton yew Hp | Bi Tut utepay 
e+ ANERO 


O Not Coniigured 


O Dissbled 


Tum off Autoplay on: nes = 


a W Componer 
is) Requirements: 
Profiles Atleast Microsoft Windows 2909 


(3) Scripts 
E logn aap 
E osk Turns off the Autoplay feature. 

# C Net Logon Autoplay begins reading fom a dive 
C Group Pokey 85 soon as you Insert meda n the 
C Remote Assistar 
C System Restore 


3 Foto Y) : | Supported cn At east Microsoft Window 
ity | >! | 
—— : || (BeveasSeiog_) (Ment Seting 


{ fal 


Limit to approved devices: 

Computer Configuration \ Administrative Templates \ System > Device Installation \ Device 
Installation Restrictions Allow installation of devices that match any of these device IDs: (add the 
corporate device) 

Prevent installation of devices not described by other policy settings: Enabled 
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| Arata rebate donas- 

LE Prevent installation of devices using drivers that match these devi... Not config 
E i soinnin Arahan ndi Enable 
JE Display a custom message tithe when device installation is provante, Enable 


12 Alow metaliabon of devices that match any of these device 10s Not contig 
E Prevent instalation of devices that match ariy of these device IDs Not config 
EE Time (seconds) to force reboot when requred For poly changes... Not con 
E Prevent instalation of removable devices Not config 
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